$ rpki-client -vvf rpki.apnic.net/member_repository/A912986D/A0074D18533B11EABAA75B3AC4F9AE02/090D807E05F511EEBB8E1062C4F9AE02.roa File: 090D807E05F511EEBB8E1062C4F9AE02.roa (raw, json) Hash identifier: UOh7++5vEfWh4Ro/LeqzWIUlR0tMNgzC3QTRX96GET8= Subject key identifier: 6E:9E:A3:A5:2B:03:84:72:9F:CF:36:26:92:20:17:D4:EB:D2:02:E6 Certificate issuer: /CN=A912986D/serialNumber=1717ACAC053F131E2261452736513E4E8F626CDB Certificate serial: 0AEE Authority key identifier: 17:17:AC:AC:05:3F:13:1E:22:61:45:27:36:51:3E:4E:8F:62:6C:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FxesrAU_Ex4iYUUnNlE-To9ibNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912986D/A0074D18533B11EABAA75B3AC4F9AE02/090D807E05F511EEBB8E1062C4F9AE02.roa Signing time: Fri 08 Aug 2025 19:59:59 +0000 ROA not before: Fri 08 Aug 2025 19:59:59 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 16509 IP address blocks: 117.120.16.0/24 maxlen: 24 117.120.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912986D/A0074D18533B11EABAA75B3AC4F9AE02/FxesrAU_Ex4iYUUnNlE-To9ibNs.crl rsync://rpki.apnic.net/member_repository/A912986D/A0074D18533B11EABAA75B3AC4F9AE02/FxesrAU_Ex4iYUUnNlE-To9ibNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FxesrAU_Ex4iYUUnNlE-To9ibNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2798 (0xaee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912986D, serialNumber=1717ACAC053F131E2261452736513E4E8F626CDB Validity Not Before: Aug 8 19:59:59 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6896573f-1a07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d2:02:f3:60:d8:8c:f2:21:b9:55:41:75:77: 89:9a:e7:f5:e4:13:47:de:4e:30:b8:de:64:43:04: 08:1d:5b:ce:8e:5c:73:d2:7f:72:bd:c1:da:68:c6: 13:22:9b:57:c1:81:67:f6:b2:ef:33:d2:93:94:54: 77:c5:87:0c:55:00:db:f1:af:82:01:d2:fc:96:88: 21:5e:e7:0d:d1:76:68:1d:2e:16:44:09:ed:8a:ec: 6a:2e:44:f7:b2:32:a9:a3:ad:31:ff:43:77:cd:03: 2a:71:dc:91:bf:6f:5a:ec:27:91:75:42:59:e9:6f: 03:b7:fe:f6:2a:c4:96:5c:3e:95:89:49:f9:d9:4e: 93:25:c1:cc:93:f9:21:87:58:06:7e:72:db:e7:77: 19:50:e6:48:2a:4c:f6:84:fb:32:5d:0a:2c:17:4e: f5:d7:50:62:f8:4b:5c:ad:90:4c:5f:d0:91:9d:df: d2:5c:29:4b:61:cc:09:64:de:4c:50:7a:46:f9:18: 1d:2c:a7:71:0e:a5:91:ff:de:52:d9:45:de:4c:7c: 79:c4:7b:0a:c9:b4:61:bd:05:aa:af:8d:4b:52:41: 1e:ef:da:83:3c:94:89:c5:e7:23:75:cc:81:2f:a0: 03:76:58:5c:3d:57:19:ac:1f:96:71:fb:09:56:1a: 0b:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:9E:A3:A5:2B:03:84:72:9F:CF:36:26:92:20:17:D4:EB:D2:02:E6 X509v3 Authority Key Identifier: keyid:17:17:AC:AC:05:3F:13:1E:22:61:45:27:36:51:3E:4E:8F:62:6C:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912986D/A0074D18533B11EABAA75B3AC4F9AE02/FxesrAU_Ex4iYUUnNlE-To9ibNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FxesrAU_Ex4iYUUnNlE-To9ibNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912986D/A0074D18533B11EABAA75B3AC4F9AE02/090D807E05F511EEBB8E1062C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.120.16.0/23 Signature Algorithm: sha256WithRSAEncryption 0e:76:5e:1d:10:98:77:28:b2:35:1b:7f:1a:bf:23:f3:b6:60: 21:84:f9:20:53:8d:ef:73:ff:5b:ec:f2:40:ba:e0:9d:7c:74: 51:1f:6d:b2:e4:48:17:74:9d:ee:85:69:bf:2c:5c:35:09:18: 80:9e:cc:e4:bc:d0:aa:f5:a9:39:1d:41:a2:3a:6f:ef:7e:62: 19:c6:cd:82:f4:e3:d4:fe:ea:38:c4:96:b8:37:86:b0:6c:e0: a6:e5:6e:51:86:e8:4d:51:f5:2b:2a:57:4b:80:fc:27:93:aa: ec:b4:35:a0:5d:23:27:48:78:ff:7c:b3:b1:8a:c9:36:e3:2d: 12:be:43:fc:b5:2a:db:ec:e9:8e:04:23:39:d2:d4:c0:36:95: 33:8e:21:65:2f:71:95:42:47:c5:bd:fb:ac:82:dd:fe:33:24: 28:c6:ed:e6:79:58:28:80:6e:58:7d:8f:f8:5d:20:eb:6c:47: 9f:5a:f2:fc:0f:f4:1c:eb:e5:97:c4:3e:6b:38:f5:47:35:7b: ec:59:7b:de:6c:29:03:36:d9:39:8b:ed:8f:d3:03:a3:83:5f: 57:35:69:d3:3c:9b:96:e1:5c:22:67:ed:e0:f5:af:29:18:0d: d9:dc:ba:aa:85:34:21:f3:1e:e8:d8:7b:3d:07:19:2e:15:66: 8a:1d:49:39 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCu4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk4NkQxMTAvBgNVBAUTKDE3MTdBQ0FDMDUzRjEzMUUyMjYxNDUyNzM2NTEzRTRF OEY2MjZDREIwHhcNMjUwODA4MTk1OTU5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk2NTczZi0xYTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0NIC82DYjPIhuVVBdXeJmuf15BNH3k4wuN5kQwQIHVvOjlxz0n9yvcHaaMYT IptXwYFn9rLvM9KTlFR3xYcMVQDb8a+CAdL8loghXucN0XZoHS4WRAntiuxqLkT3 sjKpo60x/0N3zQMqcdyRv29a7CeRdUJZ6W8Dt/72KsSWXD6ViUn52U6TJcHMk/kh h1gGfnLb53cZUOZIKkz2hPsyXQosF07111Bi+EtcrZBMX9CRnd/SXClLYcwJZN5M UHpG+RgdLKdxDqWR/95S2UXeTHx5xHsKybRhvQWqr41LUkEe79qDPJSJxecjdcyB L6ADdlhcPVcZrB+WcfsJVhoLdQIDAQABo4IClTCCApEwHQYDVR0OBBYEFG6eo6Ur A4Ryn882JpIgF9Tr0gLmMB8GA1UdIwQYMBaAFBcXrKwFPxMeImFFJzZRPk6PYmzb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTg2RC9BMDA3NEQxODUz M0IxMUVBQkFBNzVCM0FDNEY5QUUwMi9GeGVzckFVX0V4NGlZVVVuTmxFLVRvOWli TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Z4ZXNyQVVfRXg0aVlVVW5ObEUtVG85aWJOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjk4NkQvQTAwNzREMTg1MzNCMTFFQUJBQTc1QjNBQzRGOUFFMDIvMDkwRDgwN0Uw NUY1MTFFRUJCOEUxMDYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAF1eBAwDQYJKoZIhvcNAQELBQADggEBAA52Xh0QmHcosjUb fxq/I/O2YCGE+SBTje9z/1vs8kC64J18dFEfbbLkSBd0ne6Fab8sXDUJGICezOS8 0Kr1qTkdQaI6b+9+YhnGzYL049T+6jjElrg3hrBs4KblblGG6E1R9SsqV0uA/CeT quy0NaBdIydIeP98s7GKyTbjLRK+Q/y1Ktvs6Y4EIznS1MA2lTOOIWUvcZVCR8W9 +6yC3f4zJCjG7eZ5WCiAblh9j/hdIOtsR59a8vwP9Bzr5ZfEPms49Uc1e+xZe95s KQM22TmL7Y/TA6ODX1c1adM8m5bhXCJn7eD1rykYDdncuqqFNCHzHujYez0HGS4V ZoodSTk= -----END CERTIFICATE-----Generated at Sun Aug 10 18:31:35 2025 by rpki-client